$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/B507E28636AE11EE9BDDAA12C4F9AE02.roa File: B507E28636AE11EE9BDDAA12C4F9AE02.roa (raw, json) Hash identifier: oI37If83NAUgjTbDjK+wmvX3KwqGuzvC8OGyTcK+SK8= Subject key identifier: F6:D1:2F:25:07:D4:7B:25:07:AA:DC:A5:8E:5B:C6:C5:65:31:7D:97 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: 1D Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/B507E28636AE11EE9BDDAA12C4F9AE02.roa Signing time: Sun 13 Aug 2023 12:52:21 +0000 ROA not before: Sun 13 Aug 2023 12:52:21 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 151620 IP address blocks: 103.239.82.0/23 maxlen: 23 103.239.82.0/24 maxlen: 24 103.239.83.0/24 maxlen: 24 2001:df2:b640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 06:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: Aug 13 12:52:21 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d8d204-8583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:1a:cf:f6:36:49:04:1d:01:bd:92:ad:90: f8:07:08:e7:c3:29:af:36:ca:0a:c3:a7:75:84:25: 9d:fe:06:63:1c:cc:f2:df:0f:3d:31:bf:99:09:fa: a5:19:f0:8f:06:64:16:de:5e:57:bb:a7:21:dd:e8: 35:17:0b:b5:5f:4c:dc:2b:9c:01:1c:7b:b5:8a:25: f1:a3:28:49:9a:63:bb:a0:c3:bb:8c:6c:03:92:5b: 56:06:a0:cd:96:6a:34:ce:6e:09:18:da:e1:7e:20: 5e:b7:a9:c4:b7:9a:4b:52:72:c2:f6:5e:d5:8d:07: 8b:bf:e0:38:81:90:61:3a:e3:9f:fc:ac:49:47:1c: d4:94:f7:d5:47:6c:27:4e:e3:15:6a:8c:30:b4:44: 18:47:bc:4a:53:b0:c8:c2:74:9b:22:d7:17:18:18: 57:98:27:d7:60:21:0b:61:91:b2:93:27:8e:20:7a: 9e:c8:95:d6:70:b6:47:5d:94:cf:67:ae:ed:cf:f9: c0:d2:6f:79:11:c8:5d:27:f7:3e:ae:79:b8:d0:c6: d3:f5:63:8d:04:98:23:19:af:7d:ca:26:cd:df:71: 1a:41:8d:33:ef:99:2c:ef:dd:8f:9c:f1:02:01:00: d5:80:66:c6:66:79:d4:4b:58:c9:ba:9b:b7:a3:64: 60:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D1:2F:25:07:D4:7B:25:07:AA:DC:A5:8E:5B:C6:C5:65:31:7D:97 X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/B507E28636AE11EE9BDDAA12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.82.0/23 IPv6: 2001:df2:b640::/48 Signature Algorithm: sha256WithRSAEncryption a0:11:66:8b:8b:61:a6:40:40:4d:48:66:51:2a:78:9b:47:7f: 6b:e6:e8:d5:3e:2c:3d:bd:5a:01:02:30:54:27:d5:3a:06:38: 83:a0:c0:04:1b:68:ce:8f:05:d2:84:f6:9d:d1:26:4f:41:9b: 6b:7e:c4:7c:3a:8c:da:5c:93:51:b5:3d:fc:bd:30:9c:2f:6f: 84:20:36:40:3f:51:80:7e:bc:a4:36:99:9c:c2:98:86:96:64: f9:58:22:2d:4a:21:8f:72:f1:3d:58:a8:78:35:16:48:7e:ab: a2:41:b9:0c:6c:91:0f:43:82:dd:50:53:78:67:95:c2:e4:3e: 45:63:56:8c:32:1b:c0:c1:53:34:d8:2a:7f:eb:99:8f:b0:13: fc:ff:85:54:90:78:09:ec:e8:ef:11:12:96:d3:69:c5:be:ed: f3:fb:83:4a:f0:bc:94:f2:ec:15:4c:26:87:43:78:7b:5f:dd: 3d:98:38:3b:70:87:10:3d:96:e3:43:34:d4:eb:35:da:5c:de: 55:8f:93:c2:7a:2d:72:dd:45:9d:24:12:66:be:1d:62:bc:af: 42:2b:10:54:db:cf:26:b5:d1:e1:a8:91:af:03:d9:b9:73:37: 58:ff:78:62:17:90:8e:fb:9b:65:7a:ec:51:d4:10:44:f5:3c: 04:4f:e0:01 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QUJGRTExMC8GA1UEBRMoRTU4OEM3M0U2Q0I0RkRCMzhCODRFRTQwRjhGOUI2NEM1 MEJFNEI3MzAeFw0yMzA4MTMxMjUyMjFaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDhkMjA0LTg1ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAdhrP9jZJBB0BvZKtkPgHCOfDKa82ygrDp3WEJZ3+BmMczPLfDz0xv5kJ+qUZ 8I8GZBbeXle7pyHd6DUXC7VfTNwrnAEce7WKJfGjKEmaY7ugw7uMbAOSW1YGoM2W ajTObgkY2uF+IF63qcS3mktScsL2XtWNB4u/4DiBkGE645/8rElHHNSU99VHbCdO 4xVqjDC0RBhHvEpTsMjCdJsi1xcYGFeYJ9dgIQthkbKTJ44gep7IldZwtkddlM9n ru3P+cDSb3kRyF0n9z6uebjQxtP1Y40EmCMZr33KJs3fcRpBjTPvmSzv3Y+c8QIB ANWAZsZmedRLWMm6m7ejZGALAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU9tEvJQfU eyUHqtyljlvGxWUxfZcwHwYDVR0jBBgwFoAU5YjHPmy0/bOLhO5A+Pm2TFC+S3Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBQkZFL0YxRDU1ODdFMjVG MTExRUVCN0I0ODA1OEM0RjlBRTAyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMz TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNVlqSFBteTBfYk9MaE81QS1QbTJURkMtUzNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi9CNTA3RTI4NjM2 QUUxMUVFOUJEREFBMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfvUjAPBAIAAjAJAwcAIAEN8rZAMA0GCSqGSIb3DQEBCwUA A4IBAQCgEWaLi2GmQEBNSGZRKnibR39r5ujVPiw9vVoBAjBUJ9U6BjiDoMAEG2jO jwXShPad0SZPQZtrfsR8OozaXJNRtT38vTCcL2+EIDZAP1GAfrykNpmcwpiGlmT5 WCItSiGPcvE9WKh4NRZIfquiQbkMbJEPQ4LdUFN4Z5XC5D5FY1aMMhvAwVM02Cp/ 65mPsBP8/4VUkHgJ7OjvERKW02nFvu3z+4NK8LyU8uwVTCaHQ3h7X909mDg7cIcQ PZbjQzTU6zXaXN5Vj5PCei1y3UWdJBJmvh1ivK9CKxBU288mtdHhqJGvA9m5czdY /3hiF5CO+5tleuxR1BBE9TwET+AB -----END CERTIFICATE-----Generated at Thu Jun 13 07:42:37 2024 by rpki-client on console-fra.rpki-client.org